An urgent security alert has been issued for Android users, warning of a critical vulnerability that could potentially allow cybercriminals to bypass a phone’s lock screen. The flaw, discovered by the Donjon security team, poses a significant threat due to the quickness with which attackers can exploit it, gaining access to sensitive data and stored information within minutes.
Researchers demonstrated the exploit by connecting a vulnerable Android device, powered by MediaTek processors, to a laptop via USB. In less than a minute, they were able to retrieve the device’s PIN, decrypt its storage, and access confidential files, including data from software wallets.
Identified as CVE-2026-20435, the vulnerability affects a number of Android devices using MediaTek chips, commonly found in budget-friendly smartphones. Security experts explain that the flaw allows attackers to extract encryption keys before the system fully boots, bypassing security measures like full-disk encryption and lock screen protections.
To mitigate the risk, users are advised to check their phone’s processor information in the device settings and ensure timely installation of any available security updates, particularly if the device runs on a MediaTek chip. MediaTek has already released a fix, but users must wait for individual device manufacturers to distribute the update through software patches. Regularly updating the device is crucial for maintaining security.
It is important to note that this exploit requires physical access to the device, meaning that as long as the phone is in the user’s possession and regularly updated, the risk is minimized. However, older devices that no longer receive updates may remain vulnerable, prompting users with such devices to exercise caution or consider upgrading for enhanced security.